Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

permission scheme

xin_wang
xin_wang June 11, 2025

New developers will join a team to work on a web application project. As a project

administrator, Dom needs to ensure he has the proper access to control their permission.

Which of the following should Dom add to the project permission scheme?

  1. Roles
  2. Groups
Answer
Watch
Like Be the first to like this
103 views

2 answers

1 vote
Trudy Claspill
Trudy Claspill
Community Champion
June 11, 2025

Hello @xin_wang 

Welcome to the Atlassian community. 

That appears to be an exam question. What is the source of the question?

Which do you think is the correct answer? What information are you using to arrive at your conclusion?

View More Comments
xin_wang
xin_wang June 11, 2025

I think the answer is B, but the answer is A, I'm a little confused

Like
Alexander Hohmann
Alexander Hohmann
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
June 12, 2025

Roles only work within one given project. But before that, Dom must have user rights for administering projects in Jira, which is controlled by user group membership (except in the free version of Jira). Once Dom has that right, he can manage project roles and grant them to new developers.

Like
Trudy Claspill
Trudy Claspill
Community Champion
June 12, 2025

The question says that Dom is a Project Administrator.

A project administrator does not have permission to manage the members of Groups (that means User Groups).

A project administrator does have permission to manage the members of Roles (Project Roles) for the projects that they administer.

If the Permission are assigned to Roles, then Dom can control the permissions for users in his project by assigning the users to the Roles that are granted the permissions, and removing users from Roles to revoke their permissions

Since Dom cannot manage the membership of Groups, if Groups are used in the Permissions then Dom cannot manage the permissions for users in his project. The User Administrator who manages Group memberships would control who has which permissions in Dom's projects.

Like
xin_wang
xin_wang June 13, 2025

Is it because roles allow you to manage permissions more finely?

Like
Trudy Claspill
Trudy Claspill
Community Champion
June 13, 2025

No, it is because a user that is only a Project Admin can manage the members of Project Roles and does not have permission to manage the members of Groups. The question says that Dom is a Project Admin.

If Groups are used in the project permissions the project admin cannot add users to the groups to grant the users permissions.

If Roles are used in the project permissions, then the project admin can grant permissions by adding the users to the Roles.

Like
Reply
0 votes
Petru Simion _Simitech Ltd__
Petru Simion _Simitech Ltd__
Atlassian Partner
June 12, 2025

Hi @xin_wang ,

 

Envisioning how Permission schemes work, witout an enterprise view on roles and groups is challenging.

The solution in an enterprise is requiring collaboration between the Jira admin who creates the groups and assigns users to group, creates roles and creates permission schemes, that are using roles and/or groups, and assignes those permission schemes to projects.

While groups are visible to an admin in the user management, users are added to roles in each and every project by a Project Admin. This makes the overall look of who has permission to do what in an enterprise not easy to view, at an enterprise level.

 

If your company is opened to using apps you can use Roles Dashboard for Jira , an app released by our company to provide easily how roles are distributed to projects in an enterprise.

You can search for all projecs and roles or just some projects and some roles within your enterprise.

 

roles_dashboard_modal_empty_filter.png

 

The search result can be viewed in two perspectives.

Project - User - Role Perspective

 

roles_dashboard_project_user_role_perspective.png

 

User - Role - Project Perspective

roles_dashboard_user_role_project_perspective.png

 

This will give you an overall view that, together with the Permission Schemes will help you envision and decide how to configure your permissions.

 

Regards, 

 

Petru

Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
DEPLOYMENT TYPE
CLOUD
PRODUCT PLAN
PREMIUM
PERMISSIONS LEVEL
Product Admin
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Notice at Collection Terms Security